Privacy Policy
Effective Date: June 3, 2026
diana drive music ("we", "us", or "our") operates the website dianadrive.com (the "Site"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit or interact with our Site.
Information We Collect
We collect personal information that you voluntarily provide to us when you use the Site, such as when you:
- Submit information through our contact form (name, email address, message content, and optional opt-in to the VIP Fan List for updates);
- Subscribe to our VIP Fan List via the dedicated external page at fans.dianadrive.com (email address and any other information you choose to provide).
We also automatically collect certain information when you visit the Site, including:
- Device and usage information (such as IP address, browser type, operating system, referring URLs, and pages viewed);
- Performance and usage metrics (such as page load times, Core Web Vitals, and visit counts) collected via Cloudflare Web Analytics for monitoring site performance and improving the user experience;
- Cookies and similar technologies, primarily for security, spam protection, and basic site functionality (via services such as Cloudflare and Turnstile).
We do not collect sensitive personal information unless you voluntarily provide it to us.
How We Use Your Information
We use the information we collect for the following purposes:
- To respond to your inquiries, comments, or other communications;
- To provide, operate, and maintain our Site and services;
- To send you information about new releases, merch, events, and other updates (only if you have opted in via the checkbox on our contact form or the dedicated VIP Fan List page);
- To improve and personalize your experience on the Site;
- To monitor site performance, detect technical issues, and protect against spam and fraudulent activity (including through services like Cloudflare Turnstile and Cloudflare Web Analytics);
- To comply with legal obligations.
Sharing of Information
We do not sell, rent, or trade your personal information to third parties.
We may share limited information with trusted service providers who help us operate and secure the Site. These currently include:
- Formspree, which receives and processes the information you submit through our contact form.
- Cloudflare, which provides hosting, security (including Turnstile CAPTCHA), and Web Analytics (Real User Monitoring / performance and aggregated usage data collection via the beacon script).
These service providers are contractually required to protect your information and may only use it to provide services to us.
We may also disclose information if required to do so by law or in response to valid legal requests.
Third-Party Services and Embeds
Our Site uses a small number of third-party services to provide core functionality. These currently include:
- Formspree — to process submissions from our contact form.
- Cloudflare Turnstile — to help protect the contact form from spam and abuse.
- Cloudflare Web Analytics — to collect aggregated, anonymized performance metrics (such as page load times and Core Web Vitals) and basic site usage data. This service operates without cookies or persistent individual tracking identifiers.
- Bandsintown — tour and show data is fetched server-side via our own Cloudflare Worker and KV cache; Bandsintown has no direct presence on this page and does not receive your data when you visit.
- YouTube — we currently link to YouTube videos using thumbnail images rather than embedded players.
- X (via our Cloudflare Worker) — the "Focus On" / News section displays recent public posts from our X account (@dianadriveband). Data is fetched server-side with 24-hour edge caching; no client-side X scripts or direct API calls occur in the browser.
- Lyrics (via our Cloudflare Worker) — the lyrics page fetches song data from our own Cloudflare Worker, which serves content directly from our static files. No personal data is required or collected to view lyrics.
- Our Cloudflare Workers — all three Workers (X feed, tour dates, lyrics) may log your IP address for rate-limiting purposes. These logs are retained internally by Cloudflare and are not shared with third parties.
- Social media platforms (Instagram, TikTok, X, Facebook, YouTube, etc.) — for external links only.
These third parties may set their own cookies or collect limited information in accordance with their own privacy policies. We do not control their data practices. We encourage you to review the privacy policies of these services.
Cookies and Tracking Technologies
We use a minimal number of cookies and similar technologies on this Site. Most are strictly necessary for the site to function properly (such as spam protection via Turnstile).
We do not use advertising cookies, cross-site tracking, or traditional third-party analytics platforms that rely on persistent cookies or individual identifiers (such as Google Analytics). We do use Cloudflare Web Analytics, a privacy-focused Real User Monitoring (RUM) service that collects aggregated performance metrics and basic usage data without setting cookies or tracking individual visitors across sites.
You can manage or disable cookies through your browser settings at any time. Note that disabling certain cookies may affect the functionality of the contact form.
Your Rights
Depending on your location (for example, under GDPR if you are in the EEA or CCPA/CPRA if you are in California), you may have rights such as:
- The right to access the personal information we hold about you;
- The right to request correction or deletion of your data;
- The right to object to or restrict certain processing;
- The right to data portability;
- The right to opt out of the "sale" or "sharing" of your data (we do not sell or share personal information for cross-context behavioral advertising).
To exercise any of these rights, please contact us at info@dianadrive.com. We will respond to verifiable requests within the timeframes required by applicable law.
Do Not Track
Some browsers have a "Do Not Track" feature that signals to websites that you do not want to be tracked. Because there is no uniform standard for how to respond to these signals, our Site does not currently respond to "Do Not Track" signals. However, we honor your choices regarding cookies as described above.
Data Security
We implement reasonable security measures to protect your information. These include HTTPS enforcement across the entire site, a strict Content Security Policy (CSP) to mitigate injection attacks, and edge-level security provided by Cloudflare (including DDoS protection and WAF rules on our Worker subdomains). However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.
Children’s Privacy
Our Site is not directed to children under 13. We do not knowingly collect personal information from children under 13.
Changes to This Policy
We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Effective Date" and will be posted on this page.
Contact Us
If you have any questions or concerns about this Privacy Policy, or wish to exercise your privacy rights, please contact us at:
Last updated: June 4, 2026